Resolved! Security rules on middle level DGs

I have three templates in a stack and three levels of device groups. I want to create a leveled policies based on security zones. Let's say I have a secuity zone called GlobalProtect.

Let's say I have:

DG-Standard

|-------DG-Management

            |----

Resolved! Template stack and referencing security zones

Settings in a template cannot reference to another template even if in the same template stack. I want to simplify management of security policies based on security zones. 

Let say I have Template-Standard and then templates for each PA like Template

Resolved! Putting PA SSL decrypt certificate in other people in chrome

i found that my PA cert for ssl decryption is  under other people in chrome not in trusted root on one of computers.

still i am able to access websites where ssl  decryption is enabled 

any thoughts?

Resolved! Generating customer report -> number of sessions

Hi Community,

Wondering if it's possible to create a custom report showing the average number of session processed by the firewall during the last: day/7 days/30 days/180 days/365 days.

Thanks,

H

Resolved! Putting a PA-4060 back into service

I recently aquired a PA-4060 from a recycling center. It appears to be fully functional without issue. It's currently on PAN-OS 4.1.12. How can I go about updating this device? I'd like to try and use it in my homelab for learning about Palo Alto pro

Resolved! External Email Server Filtering

We have a ListServ server which needs to accept email from a user hosted in Office 365.  I would like to limit the security rule allowing the inbound traffic to only accept SMTP connections from the O365 mail servers.  I know the list of those server

Resolved! custom url filter action continue and ssl decryption

i have configured few custom url and action is set to continue.

for some https websites i get response page and when i click on continue it works fine.

for some https websites chrome shows error connection reset.

PCaps on PA does not show any drops.

tra

Resolved! Command line

I have come accross and article that show some of the CLI commands for palo alto but there aren't that many listed. When I call into support they are able to come up with som many more anyone know where I can get a larger listing?

Resolved! Tunnel monitoring using internal src to external dst?

Is it possible to monitor VPN tunnels using an internal source IP on my tunnel interface and the external IP of the other system? I won't always have control/access to the other side of the tunnel, I may only know the local subnet(s) and the external

Resolved! Use public email server for Email gateway

Is it possible to use a public email service, such as gmail or outlook, for the email gateway in the Server Profile? 

Or must this be an internal SMTP server?